Hello,
I was wondering if there is a way to let specific users access (write ) given fields :
• all my users are in a single branch • all my users are inetOrgPerson + posixAccount • users are distributed in several groups according to their gidNumbers • some users are priviledged and also belong to a given posixGroup
I would like to know if it is possible to write an acl so that :
a priviledge user can modify some fields ( shell, homeDirectory ) of users whose gidNumber matches the gidNumber of the priviledged user
Thanks
Fred
--On Thursday, September 10, 2009 9:02 AM +0000 fmgre-liste01@yahoo.fr wrote:
I would like to know if it is possible to write an acl so that :
a priviledge user can modify some fields ( shell, homeDirectory ) of users whose gidNumber matches the gidNumber of the priviledged user
Yes, it is possible. Look at the val.regex bits in slapd-access man page.
--Quanah
--
Quanah Gibson-Mount Principal Software Engineer Zimbra, Inc -------------------- Zimbra :: the leader in open source messaging and collaboration
openldap-technical@openldap.org
-
fmgre-liste01@yahoo.fr -
Quanah Gibson-Mount